Teca Diary PE SQL Injection Vulnerability

2006.02.23

Credit: alex evuln com

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2006-0729

CWE: CWE-89

CVSS Base Score: 7.5/10

Impact Subscore: 6.4/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

New eVuln Advisory:
Teca Diary PE SQL Injection Vulnerability
http://evuln.com/vulns/75/summary.html

--------------------Summary----------------
eVuln ID: EV0075
CVE: CVE-2006-0729
Software: Teca Diary PE
Sowtware's Web Site: http://www.teca-scripts.com
Versions: 1.0
Critical Level: Moderate
Type: SQL Injection
Class: Remote
Status: Unpatched. No reply from developer(s)
Exploit: Available
Solution: Not Available
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)

-----------------Description---------------
Vulnerable script: functions.php

Variables $yy $mm $dd are not properly sanitized. This can be used to make any SQL query by injecting arbitrary SQL code.

--------------Exploit----------------------
Available at: http://evuln.com/vulns/75/exploit.html

--------------Solution---------------------
No Patch available.

--------------Credit-----------------------
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)

Regards,
Aliaksandr Hartsuyeu
http://evuln.com - Penetration Testing Services
.

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

Teca Diary PE SQL Injection Vulnerability

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Teca Diary PE SQL Injection Vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.